Huawei Cloudengine 12800 Firmware — known CVE vulnerabilities
Every CVE whose affected-product data names Huawei Cloudengine 12800 Firmware, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVE-2016-6178 — CVSS 9.8 (critical): Huawei NE40E and CX600 devices with software before V800R007SPH017; PTN 6900-2-M8 devices with software before V800R007SPH019; NE5000E…
CVE-2020-9207 — CVSS 7.8 (high): There is an improper authentication vulnerability in some verisons of Huawei CloudEngine product. A module does not verify the input file…
CVE-2020-1870 — CVSS 7.5 (high): There is a denial of service vulnerability in some Huawei products. Due to improper memory management, memory leakage may occur in some…
CVE-2020-9094 — CVSS 7.5 (high): There is an out of bound read vulnerability in some verisons of Huawei CloudEngine product. A module does not deal with specific message…
CVE-2020-9124 — CVSS 7.5 (high): There is a memory leak vulnerability in some versions of Huawei CloudEngine product. An unauthenticated, remote attacker may exploit this…
CVE-2021-22328 — CVSS 7.5 (high): There is a denial of service vulnerability in some huawei products. In specific scenarios, due to the improper handling of the packets, an…
CVE-2021-22332 — CVSS 7.5 (high): There is a pointer double free vulnerability in some versions of CloudEngine 5800, CloudEngine 6800, CloudEngine 7800 and CloudEngine…
CVE-2021-22393 — CVSS 7.5 (high): There is a denial of service vulnerability in some versions of CloudEngine 5800, CloudEngine 6800, CloudEngine 7800 and CloudEngine 12800…
CVE-2021-40008 — CVSS 7.5 (high): There is a memory leak vulnerability in CloudEngine 12800 V200R019C00SPC800, CloudEngine 5800 V200R019C00SPC800, CloudEngine 6800…
CVE-2019-5248 — CVSS 7.4 (high): CloudEngine 12800 has a DoS vulnerability. An attacker of a neighboring device sends a large number of specific packets. As a result, a…
CVE-2020-9137 — CVSS 6.7 (medium): There is a privilege escalation vulnerability in some versions of CloudEngine 12800,CloudEngine 5800,CloudEngine 6800 and CloudEngine 7800…
CVE-2021-40042 — CVSS 6.5 (medium): There is a release of invalid pointer vulnerability in some Huawei products, successful exploit may cause the process and service abnormal…
CVE-2020-1865 — CVSS 6.5 (medium): There is an out-of-bounds read vulnerability in Huawei CloudEngine products. The software reads data past the end of the intended buffer…
CVE-2021-37122 — CVSS 6.5 (medium): There is a use-after-free (UAF) vulnerability in Huawei products. An attacker may craft specific packets to exploit this vulnerability…
CVE-2019-5291 — CVSS 5.9 (medium): Some Huawei products have an insufficient verification of data authenticity vulnerability. A remote, unauthenticated attacker has to…
CVE-2016-8790 — CVSS 5.7 (medium): Huawei CloudEngine 5800 with software before V200R001C00SPC700, CloudEngine 6800 with software before V200R001C00SPC700, CloudEngine 7800…
CVE-2021-40033 — CVSS 5.5 (medium): There is an information exposure vulnerability on several Huawei Products. The vulnerability is due to that the software does not properly…
CVE-2020-1810 — CVSS 5.3 (medium): There is a weak algorithm vulnerability in some Huawei products. The affected products use the RSA algorithm in the SSL key exchange…
CVE-2016-8782 — CVSS 5.3 (medium): Huawei CloudEngine 12800 V100R003C00, V100R003C10, V100R005C00, V100R005C10, V100R006C00 have a memory leak vulnerability. An…
CVE-2021-22362 — CVSS 5.3 (medium): There is an out of bounds write vulnerability in some Huawei products. An attacker can exploit this vulnerability by sending crafted data…
CVE-2020-1861 — CVSS 4.4 (medium): CloudEngine 12800 with versions of V200R001C00SPC600,V200R001C00SPC700,V200R002C01,V200R002C50SPC800,V200R002C50SPC800PWE,V200R003C00SPC810…
CVE-2016-8784 — CVSS 4.3 (medium): Huawei CloudEngine 12800 V100R003C00, V100R003C10, V100R005C00, V100R005C10, V100R006C00 have a memory leak vulnerability. An…
CVE-2020-9102 — CVSS 3.3 (low): There is a information leak vulnerability in some Huawei products, and it could allow a local attacker to get information. The…